Sangano reNational Environmental Satellite Data Information Service (NESDIS) rakadzikisa mitengo yegadziriro yeRed Hat Enterprise Linux (RHEL) ne35% nekutama kubva kuPuppet Enterprise kuenda kuAnsible Tower. Mune iyi "maitiro atakaita" vhidhiyo, mainjiniya ehurongwa Michael Rau anotsanangura nyaya yekutama uku, achigovera matipi anobatsira uye zvidzidzo zvakadzidzwa kubva pakufamba kubva kune imwe SCM kuenda kune imwe.
Kubva pane iyi vhidhiyo iwe uchadzidza:
- maitiro ekururamisa manejimendi kugona kwekuchinja kubva kuPuppet Enterprise kuenda kuAnsible Tower;
- ndeapi mazano ekushandisa kuita kuti shanduko iite nyore sezvinobvira;
- matipi ekuchinjisa PE inoratidzira muAnsible Playbook;
- Kurudziro yekugonesa kuisirwa kweAnsible Tower.
Mhoroi mose, zita rangu ndiMichael Rau, ndiri Senior Systems Injiniya kuActioNet, inoshandira National Oceanic uye Atmospheric Administration (NOAA) NESDIS sevhisi. Nhasi tichataura nezve kucheka tambo - yangu pachangu chiitiko chekutama kubva kuPuppet Enterprise kuenda kuAnsible Tower. Dingindira remharidzo iyi nderokuti βtarisa mavanga anguβ akasara mushure mekunge ndaita shanduko iyi kutanga kwegore. Ndinoda kugovera zvandakadzidza kuburikidza nenzira iyi. Saka kana iwe ukatora chimwe chinhu chakadai, uchishandisa ruzivo rwangu, unogona kuita shanduko pasina rimwe basa rekuwedzera.
Iwe unoona masiraidhi akafanana neaya pakutanga kwemharidzo yega yega paAnsible Fest. Iyi siraidhi inoratidza nhoroondo yeautomation yekambani yangu. Ini handisi mutsva kune izvi nekuti ndanga ndichishandisa Puppet/Puppet Enterprise kubvira 2007. Ndakatanga kushanda neAnsible muna 2016, uye sevamwe vashandisi vakawanda vechigadzirwa ichi, ndakakwezvwa nemukana we "mano" uchishandisa mutsara wekuraira uye zvinyorwa zviri nyore (playbooks). Pakupera kwe2017, ndakaenda kune manejimendi angu nezvezvikonzero zvakasimba zvekutamira kuAnsible Tower. Mune miniti ini ndichakuudza nezve zvikonzero zvakandikurudzira kutora danho iri. Mushure mekugamuchira mvumo yemaneja, zvakatora imwe mwedzi yakati kuti kupedza chirongwa, uye ndakaita shanduko muna Ndira-Kukadzi wegore rino. Saka, isu takasiya zvachose Puppet tichifarira Ansible, uye chinhu chikuru.
Chinonyanya kufadza kwandiri nezve Ansible kugona kunyora nekushandisa mabasa nemabhuku ekutamba. Mabasa akanakira kugadzira akasiyana asi ane hukama mabasa uye nekuisa data rese rine chekuita neaya mabasa munzvimbo imwechete. Bhuku rekutamba iri YAML syntax, script faira inotsanangura zviito zvemumwe kana anopfuura anotambira. Ndinoudza vashandisi nezvezvinhu izvi, kunyanya vanogadzira software. Ansible Shongwe inokupa iwe kugona kutaura, "kwete, iwe hauna mukana wekupinda, asi ini ndinokupa iwe kugona kumhanyisa maitiro ese eTower uye kutangazve sevhisi kana uchinge waida." Ndichakuudza nezvenzvimbo yebasa uye midziyo yatinoshandisa.
Iyi imubatanidzwa weLAN, 7 masaiti emuviri akabatana kuburikidza negore MPLS, 140 RHEL maseva, 99% ayo ari chaiwo (vSphere), SuperMicro hardware, NexentaStore network kuchengetedza, seti yeCisco, Arista uye Cumulus switch uye Fortinet UTM yakabatana kutyisidzira manejimendi. zvishandiso pane imwe neimwe saiti.
Iyo federal network inoreva kuti ndinofanira kushandisa ese matanho ekuchengetedza ruzivo anopihwa nemutemo. Iwe unofanirwa kugara uchifunga kuti Puppet Enterprise haitsigire yakawanda yehardware yatinoshandisa. Isu tinomanikidzwa kushandisa bhajeti hardware nekuti masangano ehurumende ane matambudziko ekupa mari chinhu chinodhura ichi. Ndicho chikonzero isu tichitenga SuperMicro hardware uye tinounganidza midziyo yedu kubva kune imwe neimwe zvikamu, kuchengetedza kunovimbiswa nezvibvumirano zvehurumende. Isu tinoshandisa Linux uye ichi ndicho chimwe chezvikonzero zvakakosha zvekuchinjira kuAnsible.
Nhoroondo yedu naPuppet ndeiyi inotevera.
Muna 2007, takanga tine network shoma ye20-25 nodes, umo takaisa Puppet. Chaizvoizvo, node idzi dzaingova RedHat "mabhokisi". Muna 2010, takatanga kushandisa Puppet Dashboard web interface ye45 nodes. Sezvo network ichiramba ichikura, takatamira kuPE 2014 muna 3.3, tichiita shanduko yakakwana nekunyora zvakare kwe75 node. Izvi zvaifanira kuitwa nokuti Puppet anofarira kuchinja mitemo yemutambo, uye munyaya iyi vakashandura zvachose mutauro. Kwapera gore, pakapera rutsigiro rweshanduro 3 yePuppet Enterprise, takamanikidzwa kutamira kuPE 2015.2. Taifanira kunyora zvakare manifest zvakare kune maseva matsva uye kutenga rezinesi ine nzvimbo yakachengetwa ye100 node, kunyangwe panguva iyoyo taingova ne85 node.
Makore maviri chete apfuura, uye isu zvakare taifanira kuita basa rakawanda kuti titamire kushanduro itsva PE 2. Takatenga rezinesi remanodhi mazana matatu, tiine zana nemakumi matatu chete. Takatozofanirazve kuita shanduko huru kumanifesiti nekuti shanduro itsva yemutauro yaive nemutauro wakasiyana nemutauro weshanduro ya2016.4. Nekuda kweizvozvo, yedu SCM yakachinja kubva kuSVN vhezheni kutonga kuenda kuBitbucket (Git). Uhu hwaive βhukamaβ hwedu naPuppet.
Saka, ndaifanira kutsanangurira manejimendi kuti nei taifanira kutamira kune imwe SCM tichishandisa nharo dzinotevera. Yokutanga ndiyo mutengo wepamusoro webasa. Ndakataura nevakomana veRedHat uye vakati mari yekumhanyisa 300 node network neAnsible Tower ihafu yemutengo wePuppet Enterprise. Kana iwe ukatengawo Ansible Injini, mutengo uchave wakafanana, asi iwe uchawana akawanda akawanda maficha kupfuura PE. Sezvo isu tiri kambani yehurumende inopihwa mari kubva kubhajeti remubatanidzwa, iyi nharo ine simba.
Nharo yechipiri ndeyekuita zvakasiyana-siyana. Puppet inongotsigira Hardware ine Puppet agent. Izvi zvinoreva kuti mumiriri anofanira kuiswa pane ese ma switch, uye inofanirwa kunge iri yazvino vhezheni. Uye kana mamwe ekuchinja kwako achitsigira imwe vhezheni, uye mamwe achitsigira imwe, iwe unozofanirwa kuisa vhezheni nyowani yePE mumiririri pavari kuti vese vashande mune imwecheteyo SCM system.
Iyo Ansible Tower system inoshanda zvakasiyana nekuti haina vamiririri, asi ine ma modules anotsigira Cisco switch uye mamwe ese ma switch. Iyi SCM inotsigira Qubes OS, Linux uye 4.NET UTM. Ansible Shongwe inotsigirawo NexentaStore network yekuchengetedza zvinodzora zvichibva paIllumos kernel, yakavhurika-sosi Unix-yakavakirwa sisitimu yekushandisa. Uku kutsigirwa kushoma, asi Ansible Tower inozviita zvakadaro.
Iyo nharo yechitatu, iyo yakakosha kwazvo kwandiri uye kune yedu manejimendi, iri nyore kushandisa. Ndakapedza makore gumi ndichiita maPuppet modules uye manifest code, asi ndakadzidza Ansible mukati mevhiki nekuti iyi SCM iri nyore kushanda nayo. Kana iwe uchimhanyisa mafaera anogoneka, hongu, kunze kwekunge iwe ukadaro zvisingaite, saka vakangwara uye vanopindura vanobata vanoshanda navo. YAML-based playbooks ari nyore kudzidza uye anokurumidza kushandisa. Avo vasina kumbonzwa nezve YAML kare vanogona kungoverenga zvinyorwa uye kunzwisisa zviri nyore kuti zvinoshanda sei.
Kutaura chokwadi, Puppet inoita kuti basa rako semugadziri rinyanye kuoma nekuti rakavakirwa pakushandisa Puppet Master. Ndiwo chete muchina unobvumidzwa kutaurirana nePuppet agents. Kana iwe waita chero shanduko kune manifest uye uchida kuyedza kodhi yako, iwe unofanirwa kunyora kodhi yePuppet Master, ndiko kuti, gadzira iyo Puppet Master /etc/hosts faira kubatanidza vatengi vese uye tanga iyo Puppet Server sevhisi. Chete mushure meizvi iwe uchakwanisa kuyedza mashandiro etiweki michina pane imwe host. Iyi inzira inorwadza.
Zvese zviri nyore muAnsible. Zvese zvaunoda kuti uite kugadzira kodhi yemuchina unogona kutaurirana kuburikidza neSSH nemuiti ari pasi pekuyedzwa. Izvi zviri nyore zvikuru kushanda nazvo.
Iyo inotevera yakakura mukana weAnsible Shongwe kugona kukwidziridza yako iripo yekutsigira system uye kuchengetedza yako iripo hardware kumisikidza. Iyi SCM inoshandisa ruzivo rwese rwuripo nezve zvivakwa zvako uye hardware, chaiwo michina, maseva, nezvimwe pasina mamwe matanho. Inogona kutaura kune yako RH Satellite maseva, kana iwe uine imwe, uye inokupa iwe kubatanidzwa iwe haufe wakawana nePuppet.
Chimwe chinhu chakakosha kutonga kwakadzama. Iwe unoziva kuti Puppet is modular system, ndeye mutengi-server application, saka iwe unofanirwa kutsanangura zviripo zvemichina yako yese mune imwe refu manifest. Muchiitiko ichi, mamiriro ega ega ega ega ega system anofanirwa kuongororwa hafu yeawa imwe neimwe - iyi ndiyo nguva yakatarwa. Aya ndiwo mashandiro anoita Puppet.
Shongwe inokuponesa kubva ipapo. Iwe unogona kumhanyisa maitiro akasiyana pane akasiyana midziyo pasina zvirambidzo; iwe unogona kuita basa rekutanga, kumhanya mamwe maitiro akakosha, kumisikidza yekuchengetedza system, uye kushanda nemadatabase. Iwe unogona kuita zvese zvakaoma muPuppet Enterprise. Saka, kana iwe wakazvigadzirisa pane imwe chete inotambira, zvinotora nguva kuti shanduko dziite pane asara mahoste. MuAnsible, shanduko dzese dzinoitika panguva imwe chete.
Chekupedzisira, ngatitarisei iyo yekuchengetedza module. Ansible Shongwe inoishandisa zvinokatyamadza, nekunyatsojeka uye nehanya. Iwe unogona kupa vashandisi mukana kune chaiwo masevhisi kana kune chaivo vanotambira. Ini ndinoita izvi nevashandi vangu vakajaira kushanda paWindows, vachidzikamisa kupinda kwavo kuLinux shell. Ndinoona kuti vawana mukana weTower kuitira kuti vangokwanisa kuita basa uye vangobata masevhisi anoenderana navo.
Ngatitarisei zvinhu zvaunofanira kuita pamberi penguva kuti shanduko yako kuenda kuAnsible Tower kuve nyore. Chokutanga pane zvose, unoda kugadzirira midziyo yako. Kana zvimwe zvinhu zvezvivakwa zvako zvisati zvatove mudhatabhesi, unofanirwa kuzviwedzera ipapo. Kune masisitimu asingachinje maitiro avo uye nekudaro haasi muPuppet dhatabhesi, asi kana ukasaawedzera ipapo usati watamira kuShongwe, iwe unorasikirwa nehuwandu hwezvakanakira. Iyi inogona kunge iri "tsvina", yekutanga dhatabhesi, asi inofanirwa kunge iine ruzivo nezvese midziyo yauinayo. Naizvozvo, iwe unofanirwa kunyora ane simba Hardware script iyo inongosundidzira zvese shanduko yezvivakwa mudhatabhesi, ipapo Ansible achaziva kuti ndeapi mauto anofanirwa kunge aripo pane itsva system. Iwe hauchazoda kuudza iyi SCM iyo inotambira iwe yawakawedzera uye ndeapi mauto asisipo, nekuti inozoziva zvese izvi otomatiki. Iyo yakawanda data iripo mudhatabhesi, iyo inonyanya kubatsira uye inoshanduka Ansible ichave. Inoshanda sekunge inongoverenga iyo hardware mamiriro barcode kubva kune database.
Pedza imwe nguva uchijairana nemutsara wekuraira muAnsible. Mhanya mimwe mirairo yetsika kuti uedze script yehardware, nyora uye mhanyisa zvinyorwa zviri nyore asi zvinobatsira zvebhuku rekutamba, shandisa matemplate eJinja2 pazvinenge zvakakodzera. Edza kunyora basa uye script kune yakaoma, yakawanda-nhanho maitiro uchishandisa zvakajairika, zvinowanzosangana nehardware configuration. Tamba nezvinhu izvi, edza kuti zvinoshanda sei. Nenzira iyi iwe unozodzidza kushandisa maturusi ekugadzira raibhurari anoshandiswa muTower. Ndatoti zvakanditorera about 3 months kugadzirira shanduko. Ndinofunga kuti zvichienderana neruzivo rwangu, uchakwanisa kuita izvi nekukurumidza. Usatarise nguva iyi yakapambadzwa, nekuti gare gare iwe uchaona mabhenefiti ese ebasa rakaitwa.
Tevere, iwe unofanirwa kusarudza zvaunotarisira kubva kuAnsible Tower, chii chaizvo icho system iyi inofanira kukuitira.
Iwe unofanirwa kuendesa iyo sisitimu pane isina chinhu Hardware, pane isina chinhu chaiwo michina? Kana iwe unoda kuchengetedza iwo ekutanga ekushanda mamiriro uye marongero emidziyo iripo? Ichi chinhu chakakosha kumakambani eruzhinji, saka unofanirwa kuve nechokwadi chekuti uchakwanisa kutama uye kutumira Ansible pane yako iripo gadziriso. Ziva maitiro ekutonga aunoda kuita otomatiki. Tsvaga kana iwe uchida kuendesa chaiyo maapplication uye masevhisi pane iyo itsva system. Nyora zvauri kuda kuita uye zviise pamberi.
Wobva watanga kunyora script kodhi uye mabasa anogonesa mabasa aunoronga kupedzisa. Vasanganise kuita maProjekti, muunganidzwa unonzwisisika wemabhuku ekutamba akakodzera. Imwe neimwe Purojekiti ichave yeyakasiyana Git repository kana yakasiyana repository zvichienderana nekuti ndeipi kodhi maneja waunoshandisa. Unogona kubata zvinyorwa zvemabhuku ekutamba uye madhairekitori emabhuku ekutamba nekuaisa nemaoko muProjekti Base Path paTower server, kana nekuisa bhuku rekutamba mune chero source code management (SCM) system inotsigirwa neTower, kusanganisira Git, Subversion, Mercurial, uye Red Hat. Maonero. Mukati meProjekti imwe chete unogona kuisa zvinyorwa zvakawanda sezvaunoda. Semuenzaniso, ini ndakagadzira imwe yakakosha Project umo ndakaisa script yeRedHat core elements, script yeLinux musimboti, uye zvinyorwa zvezvimwe zvekutanga. Saka, mune imwe purojekiti maive neakasiyana-siyana emabasa uye mamiriro aitarisirwa kubva kune imwe Git repository.
Kumhanyisa zvinhu zvese izvi kuburikidza nemutsara wekuraira inzira yakanaka yekuyedza mashandiro avo. Izvi zvinokugadzirira iwe kugadzwa kweTower.
Ngatitaurei zvishoma nezve transcoding iyo Puppet manifest, nekuti ndakapedza nguva yakawanda pane izvi kudzamara ndafunga kuti chii chaizvo chaifanirwa kuitwa.
Sezvandambotaura, Puppet inochengetedza ese masetifomu uye magadzirirwo emahara mune imwe yakareba kuratidza, uye iyi ratidziro inochengeta zvese izvo SCM inofanira kuita. Paunenge uchiita shanduko, haufanire kupinza mabasa ako ese mune imwechete runyorwa; pachinzvimbo, funga nezve chimiro cheiyo nyowani system: mabasa, zvinyorwa, ma tag, mapoka uye chii chinofanira kuenda ikoko. Zvimwe zvezvinhu zvinozvimiririra zvetiweki zvinofanirwa kuiswa mumapoka anogona kugadzirwa zvinyorwa. Zvimwe zvakaoma zvezvivakwa zvinhu zvinosanganisira huwandu hukuru hwezviwanikwa, kusanganisira makirasi ega, anogona kusanganiswa kuita mabasa. Usati watama, unofanirwa kusarudza pane izvi. Kana iwe uchigadzira mahombe mabasa kana mamiriro asingakwane pane imwe skrini, iwe unofanirwa kushandisa ma tag kuti ukwanise kutora chaiwo zvikamu zvezvivakwa.
18:00
Dzimwe ads π
Ndinokutendai nekugara nesu. Unoda zvinyorwa zvedu here? Unoda kuona zvimwe zvinonakidza zvemukati? Titsigire nekuisa odha kana kukurudzira kushamwari, , yakasarudzika analogue yekupinda-level maseva, iyo yakagadzirwa nesu kuti iwe: (inowanikwa neRAID1 uye RAID10, kusvika ku24 cores uye kusvika ku40GB DDR4).
Dell R730xd 2 nguva yakachipa muEquinix Tier IV data center muAmsterdam? Chete pano muNetherlands! Dell R420 - 2x E5-2430 2.2Ghz 6C 128GB DDR3 2x960GB SSD 1Gbps 100TB - kubva pamadhora makumi mapfumbamwe nemapfumbamwe! Verenga nezve
Source: www.habr.com